diTii.com - All About Techology : features Latest News and Informtion About Technology

Menu

Attack Surface Analyzer Exits Beta, Version 1.0 Released

Attack Surface Analyzer tool which currently in beta phase is now released as a final product. The version 1.0 of the Attack Surface Analyzer release includes performance enhancements and bug fixes to improve the user experience. "Through improvements in the code, we were able to reduce the number of false positives and improve Graphic User […]

Attack Surface Analyzer tool which currently in beta phase is now released as a final product. The version 1.0 of the Attack Surface Analyzer release includes performance enhancements and bug fixes to improve the user experience.

"Through improvements in the code, we were able to reduce the number of false positives and improve Graphic User Interface performance," Microsoft stated. This release also includes in-depth documentation and guidance to improve ease of use.

Those new, "Attack Surface Analyzer tool help assist independent software vendors (ISVs) and other software developers during the verification phase of the Microsoft Security Development Lifecycle (SDL) as they evaluate the changes their software makes to the attack surface of a computer."

"Because Attack Surface Analyzer does not require source code or symbol access, IT professionals and security auditors can also use the tool to gain a better understanding of the aggregate attack surface change that may result from the introduction of line-of-business (LOB) applications to the Windows platform," Microsoft adds.

The tool has a stand-alone wizard to help guide users through the scanning and analysis process; a command-line version supports automation and older versions of Windows, and assists IT professionals as they integrate the tool with existing enterprise management tools.

Features include:

"Developers to view changes in the attack surface resulting from the introduction of their code on to the Windows platform

IT Professionals to assess the aggregate attack surface change by the installation of an organization's line of business applications

IT Security Auditors to evaluate the risk of a particular piece of software installed on the Windows platform during threat risk reviews

IT Security Incident Responders to gain a better understanding of the state of a systems security during investigations (if a baseline scan was taken of the system during the deployment phase)," Microsoft informed.

Post navigation

Deepak Gupta is a IT & Web Consultant. He is the founder and CEO of diTii.com & DIT Technologies, where he's engaged in providing Technology Consultancy, Design and Development of Desktop, Web and Mobile applications using various tools and softwares. Sign-up for the Email for daily updates. Google+ Profile.